Private field added to snippet

Andrew8xx8
1 parent 77faffbd
Showing 3 changed files with 99 additions and 1 deletions Show diff stats
app/controllers/projects/snippets_controller.rb
db/migrate/20130323174317_add_private_to_snippets.rb
db/schema.rb
@@ -0,0 +1,92 @@
+class SnippetsController < ProjectResourceController
+  before_filter :module_enabled
+  before_filter :snippet, only: [:show, :edit, :destroy, :update, :raw]
+
+  # Allow read any snippet
+  before_filter :authorize_read_snippet!
+
+  # Allow write(create) snippet
+  before_filter :authorize_write_snippet!, only: [:new, :create]
+
+  # Allow modify snippet
+  before_filter :authorize_modify_snippet!, only: [:edit, :update]
+
+  # Allow destroy snippet
+  before_filter :authorize_admin_snippet!, only: [:destroy]
+
+  respond_to :html
+
+  def index
+    @snippets = @project.snippets.fresh.non_expired
+  end
+
+  def new
+    @snippet = @project.snippets.new
+  end
+
+  def create
+    @snippet = @project.snippets.new(params[:snippet])
+    @snippet.author = current_user
+    @snippet.save
+
+    if @snippet.valid?
+      redirect_to [@project, @snippet]
+    else
+      respond_with(@snippet)
+    end
+  end
+
+  def edit
+  end
+
+  def update
+    @snippet.update_attributes(params[:snippet])
+
+    if @snippet.valid?
+      redirect_to [@project, @snippet]
+    else
+      respond_with(@snippet)
+    end
+  end
+
+  def show
+    @note = @project.notes.new(noteable: @snippet)
+    @target_type = :snippet
+    @target_id = @snippet.id
+  end
+
+  def destroy
+    return access_denied! unless can?(current_user, :admin_snippet, @snippet)
+
+    @snippet.destroy
+
+    redirect_to project_snippets_path(@project)
+  end
+
+  def raw
+    send_data(
+      @snippet.content,
+      type: "text/plain",
+      disposition: 'inline',
+      filename: @snippet.file_name
+    )
+  end
+
+  protected
+
+  def snippet
+    @snippet ||= @project.snippets.find(params[:id])
+  end
+
+  def authorize_modify_snippet!
+    return render_404 unless can?(current_user, :modify_snippet, @snippet)
+  end
+
+  def authorize_admin_snippet!
+    return render_404 unless can?(current_user, :admin_snippet, @snippet)
+  end
+
+  def module_enabled
+    return render_404 unless @project.snippets_enabled
+  end
+end
@@ -0,0 +1,5 @@
+class AddPrivateToSnippets < ActiveRecord::Migration
+  def change
+    add_column :snippets, :private, :boolean
+  end
+end
@@ -11,7 +11,7 @@
 #
 # It's strongly recommended to check this file into your version control system.
-ActiveRecord::Schema.define(:version => 20130318212250) do
+ActiveRecord::Schema.define(:version => 20130323174317) do
   create_table "events", :force => true do |t|
     t.string   "target_type"
@@ -190,6 +190,7 @@ ActiveRecord::Schema.define(:version =&gt; 20130318212250) do
     t.datetime "updated_at", :null => false
     t.string   "file_name"
     t.datetime "expires_at"
+    t.boolean  "private"
   end
   add_index "snippets", ["created_at"], :name => "index_snippets_on_created_at"
@@ -0,0 +1,92 @@		@@ -0,0 +1,92 @@
	1	+class SnippetsController < ProjectResourceController
	2	+ before_filter :module_enabled
	3	+ before_filter :snippet, only: [:show, :edit, :destroy, :update, :raw]
	4	+
	5	+ # Allow read any snippet
	6	+ before_filter :authorize_read_snippet!
	7	+
	8	+ # Allow write(create) snippet
	9	+ before_filter :authorize_write_snippet!, only: [:new, :create]
	10	+
	11	+ # Allow modify snippet
	12	+ before_filter :authorize_modify_snippet!, only: [:edit, :update]
	13	+
	14	+ # Allow destroy snippet
	15	+ before_filter :authorize_admin_snippet!, only: [:destroy]
	16	+
	17	+ respond_to :html
	18	+
	19	+ def index
	20	+ @snippets = @project.snippets.fresh.non_expired
	21	+ end
	22	+
	23	+ def new
	24	+ @snippet = @project.snippets.new
	25	+ end
	26	+
	27	+ def create
	28	+ @snippet = @project.snippets.new(params[:snippet])
	29	+ @snippet.author = current_user
	30	+ @snippet.save
	31	+
	32	+ if @snippet.valid?
	33	+ redirect_to [@project, @snippet]
	34	+ else
	35	+ respond_with(@snippet)
	36	+ end
	37	+ end
	38	+
	39	+ def edit
	40	+ end
	41	+
	42	+ def update
	43	+ @snippet.update_attributes(params[:snippet])
	44	+
	45	+ if @snippet.valid?
	46	+ redirect_to [@project, @snippet]
	47	+ else
	48	+ respond_with(@snippet)
	49	+ end
	50	+ end
	51	+
	52	+ def show
	53	+ @note = @project.notes.new(noteable: @snippet)
	54	+ @target_type = :snippet
	55	+ @target_id = @snippet.id
	56	+ end
	57	+
	58	+ def destroy
	59	+ return access_denied! unless can?(current_user, :admin_snippet, @snippet)
	60	+
	61	+ @snippet.destroy
	62	+
	63	+ redirect_to project_snippets_path(@project)
	64	+ end
	65	+
	66	+ def raw
	67	+ send_data(
	68	+ @snippet.content,
	69	+ type: "text/plain",
	70	+ disposition: 'inline',
	71	+ filename: @snippet.file_name
	72	+ )
	73	+ end
	74	+
	75	+ protected
	76	+
	77	+ def snippet
	78	+ @snippet \|\|= @project.snippets.find(params[:id])
	79	+ end
	80	+
	81	+ def authorize_modify_snippet!
	82	+ return render_404 unless can?(current_user, :modify_snippet, @snippet)
	83	+ end
	84	+
	85	+ def authorize_admin_snippet!
	86	+ return render_404 unless can?(current_user, :admin_snippet, @snippet)
	87	+ end
	88	+
	89	+ def module_enabled
	90	+ return render_404 unless @project.snippets_enabled
	91	+ end
	92	+end
@@ -0,0 +1,5 @@		@@ -0,0 +1,5 @@
	1	+class AddPrivateToSnippets < ActiveRecord::Migration
	2	+ def change
	3	+ add_column :snippets, :private, :boolean
	4	+ end
	5	+end